7 posts in categories kubernetes

Istio vs. Linkerd: Service Mesh on Kubernetes

Istio vs. Linkerd: Service Mesh on Kubernetes

Comparing Istio 1.29 (sidecar mode) and Linkerd 2.19: data plane, mTLS, egress, resource overhead, observability, and when to use each.

· 14 minutes reading time
Istio vs. Envoy Gateway: Gateway API on Kubernetes

Istio vs. Envoy Gateway: Gateway API on Kubernetes

Comparing Istio and Envoy Gateway as Gateway API implementations: mTLS, egress, Cilium, managed cloud specifics (AKS, GKE, OVH MKS), and real client IP.

· 19 minutes reading time
Envoy Gateway v1.7: Global Rate Limiting with a Custom ratelimit Service

Envoy Gateway v1.7: Global Rate Limiting with a Custom ratelimit Service

How to wire envoyproxy/ratelimit as a self-hosted service into Envoy Gateway v1.7 using EnvoyPatchPolicy — three xDS patches, namespace-admin self-service, and the pitfalls to avoid.

· 10 minutes reading time
cert-manager-webhook-libdns: One Webhook, Many DNS Providers

cert-manager-webhook-libdns: One Webhook, Many DNS Providers

How cert-manager-webhook-libdns enables DNS-01 across many DNS providers via libdns, with practical operational improvements, compatibility automation, and a quick Kubernetes deployment path.

· 3 minutes reading time
ESO (External Secrets Operator) Breaking Change in 0.10.0

ESO (External Secrets Operator) Breaking Change in 0.10.0

ESO (External Secrets Operator) breaking change in 0.10.0: "secret does not contain needed label... Update secret label to use it with webhook".

· 2 minutes reading time
Some Tips and Tricks for OCP (openshift)

Some Tips and Tricks for OCP (openshift)

Some Tips and Tricks for openshift and kubernetes

· 2 minutes reading time
Session stickiness in OpenShift

Session stickiness in OpenShift

How OpenShift and Kubernetes handle session stickiness via HAProxy cookie-based routing.

· 6 minutes reading time